CVE-2020-3880

State: PUBLISHED · Published: 2020-10-27 · Updated: 2024-08-04 · Assigner: apple

Description

An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 6.1.2, iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra. Processing a maliciously crafted image may lead to arbitrary code execution.

CWE

(none)

Affected

Apple / iOS and iPadOS — v=unspecified <13.3 [affected]
Apple / macOS — v=unspecified <10.15 [affected]
Apple / macOS — v=unspecified <13.3 [affected]
Apple / macOS — v=unspecified <6.1 [affected]

CVSS

(none)

References

https://support.apple.com/en-us/HT210918 x_refsource_MISC
https://support.apple.com/en-us/HT210920 x_refsource_MISC
https://support.apple.com/en-us/HT210921 x_refsource_MISC
https://support.apple.com/en-us/HT210919 x_refsource_MISC

Source

cvelistV5-main/cves/2020/3xxx/CVE-2020-3880.json